Selected Publications
"The TCP Split Handshake: Practical Effects on Modern Network Equipment" 19 May, 2010
URL: http://www.macrothink.org/journal/index.php/npa/article/view/285
"PacketFu: A Mid-Level Packet Manipulation Library for Ruby" 6 September, 2008
URL: http://planb-security.net/packetfu
"Phishing Detection and Prevention: Practical Counter-Fraud Solutions" 15 August, 2005.
URL: http://www.planb-security.net/wp/503167-001_PhishingDetectionandPrevention.pdf
"Snacktime: A Perl Solution for Remote OS Fingerprinting." (Code) 22 June, 2003.
URL: http://www.planb-security.net/wp/snacktime.html
Speaking Experience
SharkFest, 2011
PacketFu by Example and Metasploit: Open Source Penetration Testing
Lone Star Ruby Conf, 2008
PacketFu with Ruby
TippingPoint DVCast, 2006-2008
"Weekly Digital Vaccine Podcat," a technical podcast for TippingPoint DV subscribers.
Black Hat Briefings, 2006
"Investigating Evil Websites with Monkeyspaw: The Greasemonkey Security Professional's Automated Webthinger"
RSA Conference, 2006
"Phishing: Defensive Strategies and Countermeasures"
SummerCon, 2005
"Trolling for Skank: A Phishing Primer"
Missouri State Bankers' Symposium, 2005
"Directions in Online Fraud"
Other Professional Distinctions
Certified, CompTIA Security+ (2010)
Member of the IEEE (2008 - Present)
Founding member of Austin Hackers Anonymous! (2006)
Nominee for 3Com's "Innovator of the Year" award (2005)
Advisory board member for the GIAC GCIA program (2002-2004)
Education
University of Redlands
Major field of study: Pre-Law (1992)
Austin Community College
Major field of study: Computer Science (Present)
Civic Positions
Science Fair Judge, Harmony School of Science, 2009 - 2011
Travis County Election Judge, 2004 - 2008
Director of Sarah's Creek Homeowners Association, Inc. 2007 - 2008
|
Work Experience
Austin, TX
(January, 2010 - Present)
Technical Lead for the Metasploit Framework and Metasploit Pro, reporting directly to the CSO of Rapid7.
Reverse, document, and implement application network protocols
Research and implement authentication and enumeration strategies
Improve the user experience with Metasploit through UI and database enhancements.
BreakingPoint Systems, Inc. | Austin, TX
(February, 2008 - January 2010)
Lead Application Protocol Engineer for BreakingPoint's award winning Strike Team, reporting directly to the CTO.
Research, reverse, and implement both open and proprietary network application protocols
Provide independent technical expertise for internal and public consumption
Develop exploits targeting public, private, and zero-day vulnerabilities for BreakingPoint Strikes
Produce open source software for the network test and security community at large
TippingPoint Technologies | Austin, TX
(July, 2004 - February, 2008)
Senior Engineer for TippingPoint's DVLabs
Lead counter-fraud engineer, responsible for R&D for new anti-phishing technologies
Produced exploit and vulnerability IPS filters on an aggressive semiweekly schedule
Acquired by 3Com
Dell, Inc. | Austin, TX
(August, 2000 - July, 2004)
Lead intrusion detection analyst and engineer
Develop methods and tools for global penetration testing
Research, publish, and present enterprise standards for system host hardening
Source W (a Westinghouse company) | Trafford, PA
(November, 1999 - August, 2000)
Manager of first level IT support and asset management team
Develop alerting infrastructure for all servers and network devices
|